The question was about having a particular signature trigger a block of the specific IP address for all traffic. This can be done, but it does require building a script that parses the log entry and executes fw samp to block the connection.
Installing take 10 of R80.10 blew away the gateway part of a single gateway setup. Is that a known problem?
It appears to be a known issue that can happen under a rare combination of circumstances. Read the thread for a workaround to the issue. A fix for the issue will be coming in a future R80.10 jumbo hotfix.
Look for words like "error","fail", and "unable" in the following file: $FWDIR/log/cpm_for_cpdb-YYYY-MM-DD-HH-MM-SS.ELG. You may need to engage with the TAC depending on what this turns up for you.
Chances are, if you've been using Check Point products for a while, you've had to do something on a command line. We've shared some of our favorite (and even obscure) commands with you here. This has quickly become one of our most active threads, chime in with your favorites!
CLI API Example for exporting, importing, and deleting different objects using CSV files (v 00.27.05 and later)
This is a great set of scripts for migrating objects in and out of a Check Point R80+ management station using CSV files created by one of our SEs, Eric Beasley. Have you used them yet?
Did You Know...
You can control how often you receive email from the community?
We created a short video to explain how, which can also be viewed side-by-side with the captions here: Set Email Notification Prefs in CheckMates | fleeq.io